Hcc-embedded Nichestack — known CVE vulnerabilities
Every CVE whose affected-product data names Hcc-embedded Nichestack, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2020-35685 — CVSS 9.1 (critical): An issue was discovered in HCC Nichestack 3.0. The code that generates Initial Sequence Numbers (ISNs) for TCP connections derives the ISN…
CVE-2020-35684 — CVSS 7.5 (high): An issue was discovered in HCC Nichestack 3.0. The code that parses TCP packets relies on an unchecked value of the IP payload size…
CVE-2021-27565 — CVSS 7.5 (high): The web server in InterNiche NicheStack through 4.0.1 allows remote attackers to cause a denial of service (infinite loop and networking…
CVE-2021-31227 — CVSS 7.5 (high): An issue was discovered in HCC embedded InterNiche 4.0.1. A potential heap buffer overflow exists in the code that parses the HTTP POST…
CVE-2021-31228 — CVSS 7.5 (high): An issue was discovered in HCC embedded InterNiche 4.0.1. This vulnerability allows the attacker to predict a DNS query's source port in…
CVE-2021-31400 — CVSS 7.5 (high): An issue was discovered in tcp_pulloutofband() in tcp_in.c in HCC embedded InterNiche 4.0.1. The TCP out-of-band urgent-data processing…
CVE-2021-31401 — CVSS 7.5 (high): An issue was discovered in tcp_rcv() in nptcp.c in HCC embedded InterNiche 4.0.1. The TCP header processing code doesn't sanitize the value…
CVE-2020-35683 — CVSS 7.5 (high): An issue was discovered in HCC Nichestack 3.0. The code that parses ICMP packets relies on an unchecked value of the IP payload size…
CVE-2021-36762 — CVSS 7.5 (high): An issue was discovered in HCC Embedded InterNiche NicheStack through 4.3. The tfshnd():tftpsrv.c TFTP packet processing function doesn't…